堆栈内存溢出
  简体   繁体   English

如何仅为特定用户授予对IIS上托管的WCF Web服务的访问权限?

[英]How to give access to WCF web service hosted on IIS only for specific users?

 原文  2011-10-28 11:57:08       c#/ wcf/ web-services

问题描述

I have a web service which uses Windows Authentication. 我有一个使用Windows身份验证的Web服务。 Web Service is hosted on IIS. Web服务托管在IIS上。 Is it possible to narrow access to that web service only to few specific users? 是否可以仅限少数特定用户访问该Web服务? My current web config: 我当前的网络配置: 

<services>
  <service name="LANOS.SplunkSearchService.SplunkSearch">
    <endpoint binding="basicHttpBinding" bindingConfiguration="basicHttp"
      contract="LANOS.SplunkSearchService.ISplunkSearch" />
    <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
  </service>
</services>

<bindings>
  <basicHttpBinding>
    <binding name="basicHttp" allowCookies="true" maxBufferSize="20000000"
      maxBufferPoolSize="20000000" maxReceivedMessageSize="20000000">
      <readerQuotas maxDepth="32" maxStringContentLength="200000000"
        maxArrayLength="200000000" />
      <security mode="TransportCredentialOnly">
        <transport clientCredentialType="Windows" />
      </security>
    </binding>
  </basicHttpBinding>
</bindings>

By the way, I tried a solution similar to this, which I found over the Internet: 顺便说一句,我尝试了一个类似于此的解决方案,我在互联网上找到了: 

    <authentication mode="Windows"/>

    <authorization>

          <allow roles=".\Developers"/>

          <allow users="DOMAIN\ServiceAccount"/>

          <deny users="*"/>

    </authorization>

It does not work though. 它不起作用。 :( It let all domain users pass through. :(它让所有域用户通过。

1 个解决方案

解决方案1
 4 已采纳  2011-10-28 13:41:44

Wrox's Professional WCF 4 describes a way to set up UserName/Password authentication in Ch. Wrox的专业WCF 4描述了一种在Ch中设置UserName / Password身份验证的方法。 8. To summarize, you need a custom validator: 8.总而言之,您需要一个自定义验证器: 

public class MyCustomUserNamePasswordValidator : UserNamePasswordValidator
{
   public override void Validate(string userName, string password)
   {
     if(userName != "foo" && password != "bar") 
     {
        throw new SecurityTokenValidationException("Invalid user");
     }
   }
}

After that you need to add modify your userNameAuthentication element in the service configuration to "Custom" and define the validator: 之后,您需要将服务配置中的userNameAuthentication元素修改为“Custom”并定义验证器: 

 <userNameAuthentication
      userNamePasswordValidationMode = "Custom"
          customUserNamePasswordValidatorType =
          "Common.MyCustomUserNamePasswordValidator, Common" />

I hope this helps. 我希望这有帮助。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何从服务“内部”的代码访问 web.config 以获取托管在 IIS 中的 WCF 服务 - How to access the web.config for a WCF service hosted in IIS from the code “inside” the service 向用户公开IIS中托管的WCF服务 - Expose WCF service hosted in IIS to users IIS托管的WCF Web服务配置文件 - IIS hosted WCF web service config files 如何从由ServiceHost托管的IIS Web服务访问文件 - How to access a file from IIS web service hosted by ServiceHost 如何以编程方式连接到IIS中承载的WCF服务 - How to programmatically connect to a WCF service that is hosted in IIS 接受不由IIS托管的WCF Web服务的大型帖子 - Accepting large posts to WCF web service not hosted by IIS 从Linux Web应用程序中使用IIS托管的WCF服务 - Consuming IIS-hosted WCF Service from Linux Web Application 无法使用soapclient从php访问iis上托管的wcf服务 - Cannot access wcf service hosted on iis from php with soapclient 如何处理ASP.NET网页和IIS中托管的WCF服务之间的跨域请求? - How to handle cross domain request between an asp.net web page and a WCF service hosted in IIS? 如何使用Delphi 2007中的非IIS托管,WCF,C#Web服务? - How to consume non-IIS hosted, WCF, C# web service from Delphi 2007?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM